15 matches found
CLSA-2026-1777637310 Fix of 13 CVEs
CVE-2026-31431 - crypto: authencesn - reject too-short AAD assoclen8 to match ESP/ESN spec CVE-2026-31431 - crypto: scatterwalk - Backport memcpysglist CVE-2026-31431 - crypto: authencesn - Do not place hiseq at end of dst for out-of-place decryption CVE-2026-31431 - crypto: authencesn - Fix src...
Unity Linux 20.1050e Security Update: kernel (UTSA-2026-005086)
The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005086 advisory. In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of...
UBUNTU-CVE-2023-53834
In the Linux kernel, the following vulnerability has been resolved: iio: adc: ina2xx: avoid NULL pointer dereference on OF device match The affected lines were resulting in a NULL pointer dereference on our platform because the device tree contained the following list of compatible strings:...
Siemens SIMATIC Devices Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2024-42292)
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
CLSA-2025-1758019011 Fix of 17 CVEs
CVE-2024-50047 fix. // CVE-url: https://ubuntu.com/security/CVE-2025-38488 - smb: client: fix use-after-free in cryptmessage when using async crypto CVE-url: https://ubuntu.com/security/CVE-2024-57996 // CVE-url: https://ubuntu.com/security/CVE-2025-37752 - netsched: schsfq: move the limit...
of: module: add buffer overflow check in of_modalias()
...
kernel: kobject_uevent: Fix OOB access within zap_modalias_env()
in linux kernel's kobjectuevent, zapmodaliasenv incorrectly calculates the size of the memory block to move, which may cause out of bounds memory access...
kernel: kobject_uevent: Fix OOB access within zap_modalias_env()
in linux kernel's kobjectuevent, zapmodaliasenv incorrectly calculates the size of the memory block to move, which may cause out of bounds memory access...
kernel: of: module: add buffer overflow check in of_modalias()
A buffer overflow flaw was found in ofmodalias in the Linux kernel, occurring after the first snprintf call. This issue could result in loss of availability of the system...
SUSE CVE-2024-42292
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
DEBIAN-CVE-2024-42292
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
UBUNTU-CVE-2024-42292
In the Linux kernel, the following vulnerability has been resolved: kobjectuevent: Fix OOB access within zapmodaliasenv zapmodaliasenv wrongly calculates size of memory block to move, so will cause OOB memory access issue if variable MODALIAS is not the last one within its @env parameter, fixed b...
UBUNTU-CVE-2024-38541
In the Linux kernel, the following vulnerability has been resolved: of: module: add buffer overflow check in ofmodalias In ofmodalias, if the buffer happens to be too small even for the 1st snprintf call, the len parameter will become negative and str parameter if not NULL initially will point...
PT-2024-8929
Name of the Vulnerable Software and Affected Versions: Linux kernel affected versions not specified Description: The issue is related to a buffer overflow in the of modalias function. If the buffer is too small, the len parameter becomes negative, and the str parameter points beyond the buffer's...
PT-2024-26770
Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The issue is related to a NULL pointer dereference in the vsnprintf function within the Linux kernel. Specifically, in the of modalias function, the str and len parameters can cause a...